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(57) Abstract 

The present invention provides systems and methods fat electronic 
commefce including secure transaction management and electronic rights 
protection. Electronic appliances such as computers employed m 
accoidance with the present invention help to ensure that infomiation 
is accessed and used only in authorized ways, and maintain the 
integrity, availability, and/or confidentiality of the inforniation. Secure 
subsystems used with such electronic appliances provide a distributed 
virtual distribution environment (VDE) that may enforce a secure 
chain of handling and control, for example, to control and/or meter 
or otherwise monitor use of electronically stored or disseminated 
information. Such a virtual distribution environment may be used 
to protect rights of various participants in electronic conunercc and 
other electronic or electtonic-facilitated ttansactions. Secure distributed 
and other operating system environments and architectures, employmg. 
for example, secure semiconductor processing arrangements that may 
establish secure, protected environments at each node. These techniques 
may be used to support an end-to-end electronic inforafiation distribution 
capability that may be used, for example, utilizing the "electronic 
highway". 
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[57] ABSTRACT 

The present invention provides systems and methods for 
electronic coomterce iochiding secure transaction manage- 
ment and electronic rights protection. Electronic appliances 
such as computers employed in accordance with the present 
invention help to ensure that information is accessed and 
used only in authorized ways, and maintain the integrity, 
availability, and/or confidentiality of the information. Secure 
subsystems used with such electronic appliances provide a 
distributed virtual distribution environment (VDE) that may 
enforce a secure chain of handling and control, for example, 
to control and/or meter or otherwise monitor use of elec- 
tronically stored or disseminated information. Such a virtual 
distribution environment may be used to protect rights of 
various participants in electronic commerce and other elec- 
tronic or electronic-facilitated transactions. Secure distrib- 
uted and other operating system environments and 
architectures, employing, for example, secure semiconduc- 
tor processing arrangements that may establi^ secure, pro- 
tected environments at eadi node. These tediniques may be 
used to support an end-to-end electronic information distri- 
bution capability that may be used, for example, utilizing the 
**eIectronic highway." 

220 Claims, 163 Drawing Sheets 




1 



wo 98/09209 



PCT/U^7/1S243 



WE CLAIM; 

1. A rights management appliance including: 
a user input device, 

5 a user display device, 

at least one processor, and 

at least one element defining a protected processing 
environment, 

characterized in that the protected processing environment 
10 stores and uses permissions, methods, keys, programs and/or 

other information to electronically manage rights. 

2. In a rights management appliance including: 
a user input device, 

15 a user display device, 

at least one processor, and 

at least one element defining a protected processing 
environment, 

a method of operating the appliance characterized by the 
20 step of storing and vising permissions, methods, keys, programs 

and/or other information to electronically manage rights, 

3. A rights management appliance including at least one 
processor element at least in part defining a protected processing 
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environment, characterized in that the protected processing 
environment stores and uses permissions, methods, keys, 
programs and/or other information to electronically manage 
rights. 

5 

4. In a rights management appliance including at least one 
processor element at least in part defining a protected processing 
environment, a method comprising storing and using 
permissions, methods, keys, programs and/or other information 
10 to electronically manage rights. 



5, An electronic appliance arrangement containing at least 
one secure processing unit and at least one secure database 
operatively connected to at least one of said secure processing 
15 imit(s), said arrangement including means to monitor usage of at 

least one aspect of appliance usage and control said usage based 
at least in part upon protected appliance usage control 
information. 

20 6. In an electronic appUance arrangement containing at least 

one seciu-e processing unit and at least one secm^ database 
operatively connected to at least one of said secure processing 
tmit(s), a method characterized by the steps of monitoring usage 
of at least one aspect of appliance usage and controlling said 
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usage based at least in part upon protected appUance usage 
control infoxmation. 

7. An electronic appliance arrangement containing a 
5 protected processing environment and at least one secure 

database operatively connected to said protected processing 
environment, said arrangement including means to monitor 
usage of at least one aspect of an amount of appliance usage and 
control said usage based at least in part upon protected 
10 appliance usage control information processed at least in part 

through use of said protected processing environment. 

8. In an electronic appliance arrangement containing a 
protected processing environment and at least one secure 

15 database operatively connected to said protected processing 

environment, a method characterized by the steps of monitoring 
usage of at least one aspect of appUance usage and controlling 
said usage based at least in part upon protected appliance usage 
control information processed at least in part through use of said 

20 protected processing environment. 



9. An electronic appliance arrangement containing one or 
more CPUs wherein at least one of the CPUs incorporates an 
integrated secure processing unit, said arrangement storing 
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protected appliance usage control information designed to be 
securely processed by said integrated secure processing unit. 

10. In an electronic appliance arrangement containing one or 
5 more CPUs wherein at least one of the CPUs incorporates an 

integrated secure processing unit, a method including the step of 
storing and securely processing protected modular component 
appliance usage control information with said integrated secure 
processing imit. 



11. A method of compromising a distributed electronic rights 
management system comprising plural nodes having protected 
processing environments, characterized by the following steps: 
15 (a) exposing a certification private key, 

(b) passing at least one challenge/response protocol and/or 
exposing at least one external communication key based at least 
in part on the key exposed by the exposing step, 

(c) creating a processing environment based at least in 
20 part on steps (a) and (b), and 

participating in distributed rights management using the 
processing environment created by step (c). 
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12. A processing environment for compromising a distributed 
electronic rights management sysrem comprising pltirai nodes 
having protected processing environments, characterized by the 
following: 

protocol passing means including an exposed certification 
private key for passing at least one challenge/response protocol, 

means coupled to the protocol passing means for at least 
one of (a) defeating an initialization challenge/response security, 
and/or (b) exposing external communication keys, and 

means coupled to the sectirity detecting means for 
participating in distributed rights management. 

13. A method of compromising a distributed electronic rights 
management system comprising plural nodes having associated 
protected processing environments, characterized by the steps of: 

compromising the permissions record of an electronic 
container, and 

using the compromised permissions record to access and/or 
use electronic information. 

14. A system for compromising a distributed electronic rights 
management system comprising plural nodes having associated 
protected processing environments, characterized by means for 
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using a compromised permissions record of an electronic 
container for accessing and/or using electronic information. 

15. A method of tampering with a protected processing 
5 environment characterized by the steps of: 

discovering at least one system- wide key, and 
using the key to obtain access to content and/or 
administrative information without authorization. 

10 16. An arrangement including means for using at least one 

compromised system-wide key to decrypt and compromise 
content and/or administrative information of a protected 
processing environment without authorization. 

15 17. A combination general and secure processing computation 

element comprising: 

a central processing \mit; 

at least one secure resource; and 

a secure mode interface switch coupled between a centrla 
20 processing unit and the secure resource, the switch operable 

alternately in a secure mode and in a non secure mode, the 
switch blocking access by a central processing imit to the secure 
resource except when the switch is operating in the secure mode. 
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18. A secure printing method comprising: 

downloading a decryption program to an intelligent 
printer, 

sending an encrypted print stream to the printer; 
5 decrypting the encrypted print stream within the printer 

using the decryption program; and 

destroying the downloaded decryption program. 



- 1001 - 



